MalwareBazaar Database

You are currently viewing the MalwareBazaar entry for SHA256 9b410fadb743ad73ed70646b10c4c95e6882f96621e8b55345955fd3f4051f7f. While MalwareBazaar tries to identify whether the sample provided is malicious or not, there is no guarantee that a sample in MalwareBazaar is malicious.

Database Entry


Threat unknown


Vendor detections: 7


Intelligence 7 IOCs YARA File information Comments
Download sample Add tag Delete this sample Report a False Positive

SHA256 hash: 9b410fadb743ad73ed70646b10c4c95e6882f96621e8b55345955fd3f4051f7f
SHA3-384 hash: e745d8059129a60648f44a0cd6693c7da8c5c6c15d4f89e9a5b81f13774f3db473d34962adcd1a7eee2cf657da984108
SHA1 hash: 30d6f899ebfc0f26697932a5a2d3b1d80bdeddef
MD5 hash: 6e29be23608814b597e2de66d8d4d2ee
humanhash: gee-speaker-harry-sodium
File name:1SMAR30_Asssssssssssssssssssss-obf.py
Download: download sample
File size:1'079'668 bytes
First seen:2026-03-31 17:54:28 UTC
Last seen:Never
File type:
MIME type:application/x-bytecode.python
ssdeep 768:tgPIZzwoY0GS9Qb8of7OdwYZWid6wIPezLuEdA3cgXy6C6dd8VP08QqSlbxAwmh9:tnZzwoY0P6w
TLSH T12635FEDE6C94E72DC64BEB03CFB2AC7AC2218805700B67966764FDA17318F70E4B6546
Magika pythonbytecode
Reporter kirkderp
Tags:py

Intelligence

File Origin
# of uploads :
1
# of downloads :
24
Origin country :
US US
Vendor Threat Intelligence
Gathering data
Detection(s):
SecuriteInfo.com.Python.Agent-YF.UNOFFICIAL
Create hunting rule

Verdict:
Malicious
Score:
81.4%
Link:
https://cyber-fortress.com/docs/result/index.php?id=69cc0f533a18a6e1ddf01990
Tags:
virus
Verdict:
Malicious
Labled as:
Trojan/Python.Kramer
Link:
https://www.hybrid-analysis.com/sample/9b410fadb743ad73ed70646b10c4c95e6882f96621e8b55345955fd3f4051f7f
Verdict:
Malicious
File Type:
pybcode
First seen:
2026-04-01T07:57:00Z UTC
Last seen:
2026-04-01T08:08:00Z UTC
Hits:
~10
Detections:
HEUR:Trojan.Python.Kramer.gen
Link:
https://opentip.kaspersky.com/9b410fadb743ad73ed70646b10c4c95e6882f96621e8b55345955fd3f4051f7f/results?tab=lookup
Detection:
n/a
Link:
https://mwdb.cert.pl/sample/9b410fadb743ad73ed70646b10c4c95e6882f96621e8b55345955fd3f4051f7f/
Verdict:
Malicious
Threat:
Trojan.Python.Kramer
Link:
https://tip.neiki.dev/file/9b410fadb743ad73ed70646b10c4c95e6882f96621e8b55345955fd3f4051f7f
Threat name:
Script-Python.PUA.Multiverze
Create hunting rule
Status:
Malicious
First seen:
2026-03-31 17:55:30 UTC
File Type:
Binary
AV detection:
11 of 24 (45.83%)
Threat level:
  1/5
Detection(s):
Suspicious file
Link:
https://check.spamhaus.org/check/?searchterm=tnaq7lnxiowxh3lqmrvrbrgjlzuif6lgehulku2fsvp5h5afd57q._file
Result
Malware family:
n/a
Score:
  3/10
Tags:
n/a
Link:
https://tria.ge/reports/260331-wv39racw7n/
Behaviour
Modifies registry class
Suspicious use of SetWindowsHookEx
Enumerates physical storage devices
Please note that we are no longer able to provide a coverage score for Virus Total.
Threat name:
Legit
Score:
0.00
Link:
https://yomi.yoroi.company/submissions/9b410fadb743ad73ed70646b10c4c95e6882f96621e8b55345955fd3f4051f7f

File information

The table below shows additional information about this malware sample such as delivery method and external references.

Comments